This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1d480b6d-25fc-4f37-b125-f45ce236f4ea.roa File: 1d480b6d-25fc-4f37-b125-f45ce236f4ea.roa (raw, json) Hash identifier: wAHx20+CBLgkmHoBnrRAJxmH8IR3db7GRoraIwn70kM= Subject key identifier: 00:E8:31:2C:EA:33:07:05:7C:76:07:8E:01:D4:E2:01:F6:7E:1F:39 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 4F7AFFADE908511EB46F28D43FF13CCDCDC2A6AC Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1d480b6d-25fc-4f37-b125-f45ce236f4ea.roa Signing time: Wed 10 Dec 2025 06:30:12 +0000 ROA not before: Wed 10 Dec 2025 06:30:12 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d01d:800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:7a:ff:ad:e9:08:51:1e:b4:6f:28:d4:3f:f1:3c:cd:cd:c2:a6:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:30:12 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=000abe82dc2754006664797933d7c21f1bc238a8cb218023dabf624ac013e1c5, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:71:59:c4:fb:05:6c:e8:a3:b7:1a:6f:f1:27: 8f:2d:56:31:ce:32:ce:50:0a:63:53:31:28:83:a6: 3e:e5:db:3e:88:5e:77:50:9d:38:8c:e0:bb:79:62: 39:14:16:b6:ce:e2:7b:1d:8a:91:47:f0:bf:2e:3d: 2d:6e:f0:8d:a7:fe:6d:c3:6d:73:0a:65:05:71:58: 42:06:ed:12:a3:be:9f:06:53:ea:a3:52:84:29:a5: 94:a4:e1:6a:d8:ae:67:8b:a6:7e:26:66:e8:bb:8a: 94:4d:b6:bb:fb:ed:16:24:7f:71:5e:cf:de:e6:0f: 26:c7:14:8c:76:55:d1:e4:a5:ed:65:ec:0d:25:82: a3:52:5a:4e:f5:38:e9:16:35:5c:27:e3:b5:0a:31: cc:77:9b:2f:aa:21:74:33:cf:ad:95:5f:b7:ad:74: a0:31:1c:7b:46:7d:34:4f:b1:f2:15:59:d5:1a:86: 52:36:5c:0d:05:81:c6:65:ed:a6:80:db:44:0d:87: 51:1f:79:31:69:3b:99:1e:b1:b9:48:79:ba:8f:b6: 06:be:85:40:ac:2c:49:5c:15:b2:61:51:87:44:50: 4a:da:dc:d6:bb:d1:2e:34:4c:a6:0b:dc:96:f3:c0: 59:ad:51:8c:f7:2e:0f:8b:41:bb:e6:49:1c:81:35: 94:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:E8:31:2C:EA:33:07:05:7C:76:07:8E:01:D4:E2:01:F6:7E:1F:39 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1d480b6d-25fc-4f37-b125-f45ce236f4ea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d01d:800::/37 Signature Algorithm: sha256WithRSAEncryption ba:39:d5:33:1d:69:4d:e8:a0:d3:36:7d:72:1f:1b:06:e0:ae: e8:ec:ea:0e:79:fd:a2:75:e6:d7:6d:1c:ba:03:4b:f6:4c:2d: ab:83:71:21:f5:8c:ff:ef:7c:50:19:f2:f6:5a:1b:78:12:1b: 3a:1a:fc:7c:2c:ce:a0:09:3c:6e:67:c6:38:52:c9:ca:04:34: e5:03:dc:e4:eb:60:ce:02:72:2b:61:d6:0d:1d:44:43:1d:60: 1a:a5:dd:da:6e:2c:b5:79:47:6d:f2:cb:76:14:86:a8:8b:63: 5f:c0:d8:33:6e:5e:98:f0:0e:a1:6c:5e:3c:e9:07:1b:14:e6: 9e:6f:7f:ad:48:be:b7:f4:d5:d0:1f:2a:fd:f3:6d:cc:12:86: 5e:62:e8:46:ce:88:75:e6:a2:8a:96:d1:ec:49:0e:ea:64:3b: 60:87:4c:80:cb:4e:1e:8c:53:77:5c:48:56:ca:e3:16:57:5f: fc:d2:21:be:00:de:a5:f8:d6:99:c2:c3:ff:53:09:50:c1:22: e3:b1:ed:6b:df:84:29:58:c9:4f:e5:a3:dc:25:13:23:47:52: 91:68:5e:af:3b:ad:e0:c7:d9:45:fd:1a:8c:5b:81:aa:a2:32: 8c:b9:87:fa:c9:de:1b:d4:27:29:f9:df:c4:02:13:c2:49:63: c2:0b:d1:72 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUT3r/rekIUR60byjUP/E8zc3CpqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjMwMTJaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDAwMGFiZTgyZGMyNzU0MDA2NjY0Nzk3OTMzZDdjMjFmMWJjMjM4YThjYjIx ODAyM2RhYmY2MjRhYzAxM2UxYzUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKFxWcT7BWzoo7cab/Enjy1WMc4yzlAKY1MxKIOmPuXbPohed1CdOIzgu3li ORQWts7iex2KkUfwvy49LW7wjaf+bcNtcwplBXFYQgbtEqO+nwZT6qNShCmllKTh atiuZ4umfiZm6LuKlE22u/vtFiR/cV7P3uYPJscUjHZV0eSl7WXsDSWCo1JaTvU4 6RY1XCfjtQoxzHebL6ohdDPPrZVft610oDEce0Z9NE+x8hVZ1RqGUjZcDQWBxmXt poDbRA2HUR95MWk7mR6xuUh5uo+2Br6FQKwsSVwVsmFRh0RQStrc1rvRLjRMpgvc lvPAWa1RjPcuD4tBu+ZJHIE1lPUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQA6DEs 6jMHBXx2B44B1OIB9n4fOTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MWQ0ODBiNmQtMjVmYy00ZjM3LWIxMjUtZjQ1Y2UyMzZmNGVhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAyoF0B0I MA0GCSqGSIb3DQEBCwUAA4IBAQC6OdUzHWlN6KDTNn1yHxsG4K7o7OoOef2idebX bRy6A0v2TC2rg3Eh9Yz/73xQGfL2Wht4Ehs6Gvx8LM6gCTxuZ8Y4UsnKBDTlA9zk 62DOAnIrYdYNHURDHWAapd3abiy1eUdt8st2FIaoi2NfwNgzbl6Y8A6hbF486Qcb FOaeb3+tSL639NXQHyr9823MEoZeYuhGzoh15qKKltHsSQ7qZDtgh0yAy04ejFN3 XEhWyuMWV1/80iG+AN6l+NaZwsP/UwlQwSLjse1r34QpWMlP5aPcJRMjR1KRaF6v O63gx9lF/RqMW4GqojKMuYf6yd4b1Ccp+d/EAhPCSWPCC9Fy -----END CERTIFICATE-----Generated at Fri Jan 2 10:57:35 2026 by rpki-client